I believe it is correct, SHOULD strive to trusted known sources. The final mechanism SHOULD be one of (hard) failure. This is what we (ideally) strive for. I believe anything weaker is a waste of computational resources, causes confusion using neutral or even soft fails especially with repeated transactions.
All the best, Hector Santos > On Mar 5, 2024, at 9:29 AM, Alessandro Vesely <ves...@tana.it> wrote: > > Hi, > > in section 5.5.1, Publish an SPF Policy for an Aligned Domain, the last > sentence says: > > The SPF record SHOULD be constructed > at a minimum to ensure an SPF pass verdict for all known sources of > mail for the RFC5321.MailFrom domain. > > As we learnt, an SPF pass verdict has to be granted to /trusted/ sources > only. An additional phrase about using the neutral qualifier ("?") for > public sources might also be added. > > > Best > Ale > -- > > _______________________________________________ > dmarc mailing list > dmarc@ietf.org > https://www.ietf.org/mailman/listinfo/dmarc
_______________________________________________ dmarc mailing list dmarc@ietf.org https://www.ietf.org/mailman/listinfo/dmarc